Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F03BFEA0EEE11F185F1F0E0DAE4EC9C.roa
File: 8F03BFEA0EEE11F185F1F0E0DAE4EC9C.roa (raw, json)
Hash identifier: QKBvRDJDG7OBr/jKBsDA1uxrM1jZbqd3LvC9Q5ZYb/I=
Subject key identifier: 2E:FA:31:1F:3F:1A:D6:71:27:ED:3E:71:7E:13:80:A7:E5:7C:B3:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01BABB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F03BFEA0EEE11F185F1F0E0DAE4EC9C.roa
Signing time: Sat 21 Feb 2026 06:28:39 +0000
ROA not before: Sat 21 Feb 2026 06:28:35 +0000
ROA not after: Fri 27 Mar 2026 06:28:35 +0000
asID: 63139
IP address blocks: 154.94.79.0/24 maxlen: 24
154.94.83.0/24 maxlen: 24
154.94.84.0/24 maxlen: 24
154.94.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113339 (0x1babb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 21 06:28:35 2026 GMT
Not After : Mar 27 06:28:35 2026 GMT
Subject: CN=69995097-00ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b6:47:6e:15:8d:ee:03:1c:da:56:96:3e:61:
b2:f2:9e:ba:9c:5e:96:ea:e8:be:3b:9b:68:e2:fd:
f0:94:7d:1a:18:c0:a2:f9:93:8b:87:2a:c8:34:ed:
77:28:b7:a5:70:f7:77:1b:99:24:b8:44:38:b2:04:
5e:12:fc:98:32:db:47:c2:a5:db:39:ed:a6:71:e4:
28:84:ce:1e:2f:55:0d:d3:95:05:ca:9b:dc:76:4b:
88:1d:8a:6e:5d:c1:3c:ad:94:a3:82:16:33:e0:29:
61:f7:42:3c:98:5e:b8:86:15:23:73:35:d1:b3:b0:
cc:9a:5b:de:c6:c3:3c:11:a8:92:dd:03:f1:e7:62:
b4:ce:c9:24:1d:15:61:6f:14:20:a7:8a:01:ea:62:
e9:ca:99:81:aa:1a:bf:55:6f:d1:a4:03:be:92:8e:
e1:12:ca:01:86:95:23:51:72:57:5d:74:ed:66:ec:
61:02:e0:39:0e:de:bf:06:d8:36:62:af:40:69:c3:
aa:df:d0:1f:ea:9c:ad:6f:cc:b7:34:6f:39:17:40:
0f:b9:33:c5:eb:8b:7f:ed:85:23:08:cd:02:51:c0:
58:3c:3d:51:e6:2c:2f:02:f4:3a:ad:3c:76:73:97:
58:b2:6d:b8:2c:44:32:c4:af:33:b9:40:7d:c3:72:
e2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FA:31:1F:3F:1A:D6:71:27:ED:3E:71:7E:13:80:A7:E5:7C:B3:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F03BFEA0EEE11F185F1F0E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.79.0/24
154.94.83.0-154.94.85.255
Signature Algorithm: sha256WithRSAEncryption
c9:11:7f:e5:85:46:e0:f9:30:a2:e3:80:9b:91:d3:3a:66:b9:
83:1c:61:a1:ee:d5:b9:92:9a:a8:e6:0a:b9:13:26:3c:c1:ac:
21:48:fe:7a:bd:6e:bc:6c:e8:b2:48:88:d7:4d:a5:31:37:92:
c2:7f:cb:64:ba:60:4f:49:ef:64:98:ba:d6:70:00:a6:8b:44:
2e:e5:67:68:f5:31:94:e2:17:e9:30:18:1a:fd:ae:92:f2:29:
2c:20:df:a7:0a:fe:01:17:78:89:29:87:f9:4a:dd:a5:33:30:
b7:b7:f1:85:69:b4:de:2f:dc:35:86:54:55:c9:51:03:74:da:
98:0e:56:2d:1b:56:b3:71:19:b7:43:b2:ad:41:dc:e2:a8:e4:
2b:2a:0c:ed:ab:0d:bb:f3:43:45:23:48:50:f2:72:32:18:42:
b4:ac:43:3e:e9:39:d6:60:46:e0:2e:d7:b3:88:fe:02:21:5f:
46:d3:8a:9d:87:5c:46:83:fb:84:6a:3a:04:b0:68:e4:95:60:
71:d9:e0:9d:7a:ff:e0:a4:3a:83:c3:f2:21:3c:c7:3b:76:9a:
5e:ed:1c:e2:00:de:48:f1:aa:12:09:bf:76:9d:f5:53:49:f3:
ad:97:3d:83:0f:93:96:74:2a:80:5e:01:ae:96:e1:b0:b3:c8:
b8:ae:99:9a
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAbq7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwMjIxMDYyODM1WhcNMjYwMzI3MDYyODM1WjAYMRYw
FAYDVQQDEw02OTk5NTA5Ny0wMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzLZHbhWN7gMc2laWPmGy8p66nF6W6ui+O5to4v3wlH0aGMCi+ZOLhyrI
NO13KLelcPd3G5kkuEQ4sgReEvyYMttHwqXbOe2mceQohM4eL1UN05UFypvcdkuI
HYpuXcE8rZSjghYz4Clh90I8mF64hhUjczXRs7DMmlvexsM8EaiS3QPx52K0zskk
HRVhbxQgp4oB6mLpypmBqhq/VW/RpAO+ko7hEsoBhpUjUXJXXXTtZuxhAuA5Dt6/
Btg2Yq9AacOq39Af6pytb8y3NG85F0APuTPF64t/7YUjCM0CUcBYPD1R5iwvAvQ6
rTx2c5dYsm24LEQyxK8zuUB9w3Li2wIDAQABo4ICszCCAq8wHQYDVR0OBBYEFC76
MR8/GtZxJ+0+cX4TgKflfLMiMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RjAzQkZFQTBFRUUxMUYxODVGMUYwRTBEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAml5PMAwDBACaXlMDBAGa
XlQwDQYJKoZIhvcNAQELBQADggEBAMkRf+WFRuD5MKLjgJuR0zpmuYMcYaHu1bmS
mqjmCrkTJjzBrCFI/nq9brxs6LJIiNdNpTE3ksJ/y2S6YE9J72SYutZwAKaLRC7l
Z2j1MZTiF+kwGBr9rpLyKSwg36cK/gEXeIkph/lK3aUzMLe38YVptN4v3DWGVFXJ
UQN02pgOVi0bVrNxGbdDsq1B3OKo5CsqDO2rDbvzQ0UjSFDycjIYQrSsQz7pOdZg
RuAu17OI/gIhX0bTip2HXEaD+4RqOgSwaOSVYHHZ4J16/+CkOoPD8iE8xzt2ml7t
HOIA3kjxqhIJv3ad9VNJ862XPYMPk5Z0KoBeAa6W4bCzyLiumZo=
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:45:49 2026 by rpki-client